We are receiving reports from people in the greater Los Angeles area that they are unable to retrieve content from vx-underground. They are informing us Spectrum (their ISP) has blackholed vx-underground's CDN which is samples.vx-underground.

Using Google DNS resolves the issue

Hello,

A kind soul informed us that Spectrum has issued a company wide block on our CDN samples.vx-underground.

Spectrum labeled us as such because Akamai ThreatAvert has labeled us as malicious.

Akamai employees: please fix this 🥺

We've updated the vx-underground malware sample collection

- AresLoader
- Remcos
- CobaltStrike
- CerberRansomware
- Emotet
- Limerat
- AgentTesla
- RedLine
- Gopuram
- RedCap
- TrickBot
- FormBook
- QakBot

Check it out here: https://www.vx-underground.org

Hello,

Special thanks to the wonderful people at Akamai - they removed the block on our domain. Spectrum users should (eventually) be able to access our CDN soon once things are updated on their end.

Thank you everyone who helped us. Love you 😘

Just purchased a copy of the one of the most dangerous books in history!!!11 😎

Today the Federal Bureau of Investigation announced they have dismantled the Qakbot botnet. Qakbot has been one of the longest standing botnets in history, dating back to 2011.

FBI Director Christopher Wray made an announcement regarding the takedown: https://www.youtube.com/watch?v=mIeUT0QmqfU

Initial discovery as a banking trojan goes as far back as 2007*, others state 2008*, some note the current instance of the known Qakbot as starting in 2015 or 2016*

Malware analysts all across the world will proclaim today an internationally recognized holiday.

Arm sent cease-and-desist letters to Azeria Fox for the domain names containing the word 'arm'. Thankfully their jackass lawyers can't claim leg 😂

https://leg-assembly.com/

We have something really cool to share =D

We've updated the vx-underground malware sample collection... sort of?

We've added FBI Operation Duck Hunt 'Untether'. This is the payload the FBI deployed to untether infected machines from the QakBot botnet =D

Check it out here: https://www.vx-underground.org/

Medusa ransomware group claims to have ransomed 'SkynetWisp'. SkynetWisp is satellite internet service provider, primarily serving rural communities in the Houston, Texas area.

They are asking for $100,000

Information via AlvieriD

POV you've walked into a book store and browse the computer science section

Lockbit ransomware group, which has been relatively inactive for a few months, just dropped 20+ victims in a single day.

They've also reindexed their entire site, over 100+ previous victims are now listed as being leaked today.

You may not like it but this is how network administrators and network engineers are made

Our malware database, https://virus.exchange, is an open source and free database where you can easily search through our malware collection.

It currently possesses roughly half of our malware samples.

We understand that the malware database website is offline for some users.

Nerds are DDoSing us. This is why we can't have nice things. If we find you dorks DDoSing us we're going to bonk you with 1,000 monkeys.

Hackers hacking the unhackable password

Part 1.